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© Unification of directory service with file system services. 



© A software system unifies directory services with 
the file system. Directory service entries and other 
files are all stored in a common logical format, such 
as an object format. The unification of files with 
directory service entries allows a common set of 



tools to operate on both such entities and allows a 
common name space to be utilized. Security mea- 
sures are taken so as to prevent unauthorized ac- 
cess to the directory service entries. 
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Technical Field 

The present invention relates generally to data 
processing systems and, more particularly, to unifi- 
cation of directory service with file system services. 

Background of the Invention 

Conventional operating systems typically have 
provided file system services and directory service 
in independent subsystems. Each of the sub- 
systems has required a separate set of tools and a 
separate name space. As a result, the overhead for 
maintaining these separate subsystems has been 
quite large. 

Summary of the Invention 

The limitations of the prior art are overcome by 
the present invention. In accordance with one as- 
pect of the present invention a distributed system 
has components including at least one storage 
device. A method is practiced in this distributed 
system wherein files are stored in the storage 
devices in logical structures of a particular kind. 
Directory entries are also stored in the storage 
devices in logical structures of the same kind as 
the logical structures that store the files. At least 
some of the directory entries hold information re- 
garding how to locate the logical structures in the 
distributed system. A first of the logical structures 
is accessed through the storage device. The first of 
the logical structures stores at least one directory 
entry and the information stored therein is used to 
locate a second of the logical structures. 

Brief Description of the Drawings 

Figure 1 is a block diagram of a distributed 
system for practicing a preferred embodiment of 
the present invention. 

Figure 2 is a more detailed block diagram of a 
computer system for the distributed system of Fig- 
ure 1. 

Figure 3 is an illustrative diagram of a distrib- 
uted system that is partitioned into domains in 
accordance with the preferred embodiment of the 
present invention. 

Figure 4 is an illustrative diagram of a distrib- 
uted name space in accordance with the preferred 
embodiment of the present invention. 

Figure 5 is a block diagram of an illustrative 
domain of the distributed system of the preferred 
embodiment of the present invention. 

Figure 6 is a more detailed block diagram of a 
domain controller of Figure 5. 

Figure 7 is a more detailed diagram of a global 
catalog of Figure 6. 



Figure 8 is a flow chart illustrating steps per- 
formed to obtain directory service information in 
the preferred embodiment of the present invention. 

Figure 9 is a flow chart illustrating the steps 
5 performed by the preferred embodiment of the 
present invention when directory services entries 
are located using a locator service. 

Figure 10 is a flow chart illustrating the han- 
dling of a machine set of directory service objects 
10 and a domain set of directory service objects in the 
preferred embodiment of the present invention. 

Detailed Description of the Invention 

75 The preferred embodiment of the present in- 

vention unifies directory service with the file sys- 
tem. In the preferred embodiment of the present 
invention, directory service entries and other kinds 
of files are all "objects" that share a distributed 

20 name space and that are manipulated by the same 
(APIs) application program interfaces. The pre- 
ferred embodiment of the present invention pro- 
vides measures for resolving the security issues 
created by treating both files and directory service 

25 entries as objects. Directory services entries are 
stored in the name space of the file system and 
provide the name service for the file system. 

As mentioned above, the preferred embodi- 
ment of the present invention treats directory ser- 

30 vice entries as well as other files in the system as 
objects. Nevertheless, those skilled in the art will 
appreciate that the present invention need not be 
practiced in an object-oriented environment. In al- 
ternative embodiments of the present invention, 

35 directory service entries may be treated as files 
(like other files in the system) rather than as ob- 
jects. 

Figure 1 is a block diagram of a distributed 
system 10 for practicing the preferred embodiment 

40 of the present invention. Those skilled in the art will 
appreciate that the distributed system 10 shown in 
Figure 1 is merely illustrative and that other distrib- 
uted systems may be used for practicing the 
present invention. Further, the present invention 

45 may also be practiced in a single processor sys- 
tem. The distributed system 10 includes computer 
systems 12A, 12B, 12C, 12D and 12E. The com- 
puter systems 12A, 12B, 12C, 12D and 12E are 
interconnected by a network 14, such as a local 

so area network (LAN). 

Figure 2 is a block diagram that shows the 
computer system 12A in more detail. The other 
computer systems 12B, 12C, 12D and 12E need 
not have the same configuration as computer sys- 

55 tern 12A. Computer system 12A includes a central 
processing unit (CPU) 16 that has access to mem- 
ory 18 and disk storage 20. In addition, computer 
system 12A includes a number of input/output de- 
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vices, such as keyboard 22, mouse 24 and video 
display 26. It should be appreciated that the com- 
ponents of the computer system 12A shown in 
Figure 2 are merely illustrative and that other com- 
ponents may alternatively be employed. 

The memory 18 of the computer system 12A 
holds a copy of an object-oriented software system 
28. Computer systems 12B, 12C, 12D and 12E 
(Figure 1), likewise, may also hold a copy of this 
object-oriented software system 28 (although all of 
the computer systems need not hold a copy of the 
object-oriented software system). The unification of 
the directory service with the file system is realized 
through the object-oriented software system 28. 
The object-oriented software system 28 includes 
the file system, the directory services and a secu- 
rity system. The file system is described in more 
detail in co-pending patent application entitled, 
"Distributed File System," which is assigned to a 
common assignee, the contents of which are ex- 
plicitly incorporated by reference herein. 

In order to fully understand the preferred em- 
bodiment of the present invention, it is helpful to 
first review certain concepts. One such concept is 
the concept of an "object". An object is a logical 
structure that includes data structures for holding 
data and may include functions that operate on the 
data held in the data structures. An object may 
hold just data (such as property information) and 
not include code for manipulating the data. An 
object is a useful structure for encapsulating file 
data and file behavior into a single logical entity. In 
the preferred embodiment of the present invention, 
the data structures of objects hold properties or 
property sets. 

Objects are organized into "classes". An object 
class is a group of objects with similar properties 
and common behavior. Each object is a member of 
a class and constitutes an instance of the object 
class. All members of a class include at least the 
properties defined for the object class, but the 
value of these properties may vary among the 
objects of the object class. Directory service en- 
tries are distinguished from other objects in the 
system 10 by their class. 

Another concept exploited in the preferred em- 
bodiment of the present invention is the notion of 
an "interface". An interface is a named set of 
logically related functions. An interface lists signa- 
tures (such as parameters) for a set of functions. 
An interface does not provide code for implement- 
ing the functions; rather, the code for implementing 
the functions is provided by objects. Objects that 
provide the code for implementing the functions of 
an interface are said to "support" the interface. The 
code provided by an object that supports an inter- 
face must comply with the signatures provided 
within the interface. In the C + + programming lan- 



guage, an interface constitutes a set of virtual func- 
tions. 

A number of additional concepts needs to be 
discussed to understand the preferred embodiment 

5 of the present invention. These concepts relate to 
an administrative model adopted by the preferred 
embodiment of the present invention. In this admin- 
istrative model, the distributed system 10 is logi- 
cally partitioned into a number of "domains." A 

10 domain is a self-sufficient collection of resources 
that includes users, services, objects, and ma- 
chines. Figure 3 shows a simplified example of a 
distributed system that has only three domains 
30A, 30B, and 30C. Domains are provided to facili- 

75 tate scaling (i.e., adding new resources to the sys- 
tem) and encapsulation of resources into a logical 
unit within the distributed system. A domain is 
viewed as a single entity for purposes of admin- 
istration, naming, and security. Each domain imple- 

20 ments its own administrative and security policies. 
The encapsulation of resources allows a domain to 
act autonomously relative to other domains. 

From the above description, it is apparent that 
a number of objects are present throughout the 

25 distributed system 10. Figure 4 shows an example 
of a distributed name space 28. This diagram 
should not be confused with Figure 3. which is 
intended to show components of the distributed 
system 10. The distributed name space 33 is a 

30 logical tree-like structure. The distributed name 
space includes the names of objects 37 that are 
part of respective domains 35A, 35B, 35C and 35D. 
The set of objects in each domain represent a 
separate domain name space that is a sub-tree of 

35 the distributed name space 33. 

A "volume" is a file system construct that is a 
logical partition of the objects stored by the sys- 
tem. Each volume holds a group of objects. Each 
volume has a volume object associated with it. The 

40 volume object relates a path name to an actual 
volume. Each domain has its own volume objects 
that define the name space that is local to the 
domain (i.e., what volumes are local to the do- 
main). 

45 Each volume object stores an entry path of the 
volume (i.e., the logical path name for the root of 
the name space of the volume), in addition, each 
volume object stores entry paths for other volumes 
in the same domain as well as entry paths for 

so immediately superior and subordinate domains. 
The entry paths are useful in traversing the name 
space of the volume and adjacent volumes. 

Figure 5 depicts what is included in domain 
30C (Figure 3) in more detail. Figure 5 should not 

55 be confused with Figure 4, which is intended to 
show the distributed name space 33. Figure 5 
shows the components included in a domain. The 
entities shown within domain 30C in Figure 5 are 
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merely illustrative and are not intended to imply 
that each domain must include these components. 
Each domain, however, includes at least one do- 
main controller. Domain 30C includes two domain 
controllers: domain controller 34A and domain con- 
troller 34B. Two domain controllers are provided to 
enhance availability and to provide load balancing 
of domain controller resources. Each domain con- 
troller 34A and 34B is a distinguished machine. 
The role of the domain controllers 34A and 34B will 
be described in more detail below. Domain 30C 
also includes workstations 36A and 36B. A printer 
38 is provided in the domain 30C along with the 
video display 42. Domain 30C also includes file 
server 40 and files 44A, 44B, and 44C. 

Figure 6 is a block diagram showing several 
major functional components of domain controller 
34A. Each domain controller will include these 
functional components as well as additional compo- 
nents. Domain controller 34A includes a collection 
of directory service entries 46. Each directory ser- 
vice entry is a separate object that holds property 
information. A global catalog (GC) 52 is provided in 
the DS entries 46. The GC 52 will be described in 
more detail below. A directory service (DS) server 
47 is also provided in the domain controller 34A. 
The DS server 47 is responsible for mediating 
access to the directory service entries 46. A key 
distribution center (KDC) 48 is provided in the 
domain controller 34A and plays a role in maintain- 
ing security in the domain. A locator 50 for locating 
services and objects is included as part of the KDC 
48. The role of the KDC 48 and the locator 50 will 
be described in more detail below. Lastly, a distrib- 
uted file system manager 49 is provided in the 
domain controller 34A. It is responsible for man- 
aging the knowledge about the file system and 
various volumes in the domain. 

The directory service entries 46 are objects 
like any other objects within the distributed system 
10. Directory services entries 46 are available in 
two varieties. A first variety describes the structure 
of the distributed system 10 (Figure 1). A directory 
service entry of this variety may, for example, 
specify where a group of objects are stored. A 
second variety of directory service entry describes 
a resource, such as a printer or the like. The 
second variety of directory service entry stores 
properties of the associated resource. Such re- 
sources may then be located by querying for the 
properties held in the associated directory service 
entries. 

As mentioned above, the directory service en- 
tries 46 include a GC 52. The GC 52 is created by 
copying the values of select properties stored in 
the directory service entries 46 and these are 
merged with similar collections in other domains 
using a replication facility like that described in co- 



pending application entitled "Replication Facility," 
which is assigned to a common assignee with the 
present application, and the contents of which are 
explicitly incorporated by reference herein. The GC 

5 52 is a table (as shown in Figure 7) wherein each 
row 64 represents a directory service entry (see 
DS entry 1, DS entry 2 and DS entry 3 in Figure 
7), and each column 66 represents a property of 
the associated directory service entry (such as 

70 "Name", "Mailbox" and "Phone" in Figure 7) . The 
GC 52 also includes a link 65 to the directory 
service entry from which the property information 
was obtained for the GC. The link to a directory 
service entry may be converted to a moniker to 

75 "bind" to the directory service entry. A moniker in 
this context is like that defined in the Microsoft 
Object Linking and Embedding, version 2.0, pro- 
tocol established by Microsoft Corporation of Red- 
mond, Washington. The GC is a special type of 

20 summary catalog. Summary catalogs are described 
in more detail in copending patent application en- 
titled "Summary Catalogs," which is assigned to a 
common assignee with the present application. 
This copending application is explicitly incorpo- 

25 rated by reference herein. 

The GC 52 is shared among the domains of 
the distributed system 10 by replicating it across 
the domains. The GC 52 is organized to allow rapid 
searching or browsing of the directory service en- 

30 tries 46 that it lists. The GC 52 allows access to 
directory information without having to locate the 
directory service entries 46 that hold the desired 
information. The GC 52 provides a quick, low-cost 
alternative to directly searching the directory ser- 

35 vice entries. 

The directory service entries 46 include entries 
that represent principals and services of the distrib- 
uted system. A principal is an entity, such as a 
user, that can be granted access to objects or can 

40 make statements that affect access control de- 
cisions. Account information that includes pass- 
words and credentials for users is also stored in 
the directory service entries 46. The object-ori- 
ented software system 28 (Figure 2) adopts a cli- 

45 ent/server model wherein activities occur by clients 
requesting services from servers. The directory 
service entries 46 are responsible for implementing 
the directory service of the system. One of the 
primary roles of the directory entries 46 is to allow 

so users and programs to find things (such as ser- 
vices) within the distributed system 10. 

Figure 8 is a flow chart showing the alter- 
natives of how a directory service entries (including 
a GC 52) may be utilized to help find things within 

55 the distributed system 10. The directory service 
entries 46 are stored at well-known locations within 
respective domain controllers of the distributed 
system 10. As such, users and programs know 
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where to find the directory service entries 46 within 
the distributed name space 33 (Figure 4) of the 
system. Accordingly, one approach to using the 
directory service entries 46 is to browse the distrib- 
uted name space 33 for the directory service en- 
tries (step 68 in Figure 8). Each of the directory 
service entries 46 is a separate object that has a 
name within the distributed name space 33. Such 
browsing allows a user or program to obtain the 
desired information (step 74 in Figure 8). 

Since the directory service entries are objects, 
they hold property information that may be directly 
queried. The object-oriented software system 28 
(Figure 2) supports a number of standardized inter- 
faces that allow the querying of objects. Hence, a 
second alternative to finding things in the distrib- 
uted system 10 using the directory service entries 
46 is to directly query the directory service entries 
(step 70 in Figure 8). The query returns property 
information that the user or program desires (step 
74). Such queries may also be performed on other 
objects in the system. 

Browsing by navigating the directory service 
name space or querying the directory service en- 
tries 46 may be a cumbersome task. For example, 
the distributed system 10 may include a large 
number of domains and visiting the name space for 
each domain may be time-consuming, expensive 
or impossible due to disconnectors and partition- 
ing. As a result, it may often be more practical or 
even necessary to not directly use the directory 
service entries 46, but rather to utilize the GC 52. 
The GC 52 contains information about objects 
across all of the domains and is organized to 
support both querying and browsing. Thus, the 
third alternative is to use (i.e., to browse or query) 
the GC 52 (step 72) to obtain the desired informa- 
tion (step 74). 

As mentioned in the above discussion, the pre- 
ferred embodiment of the present invention pro- 
vides a self-referential system wherein the direc- 
tory service entries 46 are objects that are visible 
in the distributed name space 33, but also provide 
the information for constructing the distributed 
name space. Since the directory service entries 46 
are objects, standardized operations such as 
querying may be performed on them. In addition, 
because the directory service entries 46 are encap- 
sulated into objects, standardized APIs may be 
utilized to manipulate these objects. Thus, no du- 
plication of APIs is necessary to provide separate 
tools for the file system and the directory service 
system. In addition, because the directory service 
entries are objects, they may have properties that 
allow them to be queried and to hold additional 
information that is useful. Still further, the same 
replication mechanism may be utilized to replicate 
directory service entries, including the GC 52, as is 



used to replicate all other objects. The directory 
service entries 46 are distinguished from other 
objects by class specific code that operates upon 
the directory service entries. 

5 Given that the directory service entries 46 are 

located within the distributed name space, the 
question arises how the distributed name space is 
built during system initialization. The security sys- 
tem of the object-oriented software system 28 en- 

10 ables the location of the directory service entries 
46 on system initialization so that the distributed 
name space may be built. In particular, the system 
boot routine includes a locator 50 like that shown in 
Figure 5. This locator is utilized to locate directory 

75 service entries 46 throughout the distributed sys- 
tem 10. 

Figure 9 is a flow chart of the steps performed 
to locate the directory service entries 46. The steps 
shown in Figure 9 may be performed not only 

20 during system initialization but at other points in 
time to locate directory service entries 46. For 
instance, the steps of Figure 9 may be performed 
when the directory service information held at a 
local site has become stale and needs to be up- 

25 dated or when an administrator wants to locate the 
directory service entries 46. 

Each client within the distributed system 10 
includes a locator 50. Directory service entries are 
located on the domain controllers. The locator 50 

30 uses a combination of broadcast and remote pro- 
cedure call (RPC) protocols to locate the domain 
controller and, thus, clients can find the directory 
service entries (step 76). The request includes in- 
formation indicating that the client knows a shared 

35 secret that is shared between the KDC 48 run on 
the domain controller and the client. Authentication 
of request is performed utilizing such shared se- 
crets. Hence, in step 78, the KDC 48 of the domain 
controller authenticates the client. It is worth recail- 

40 ing from the above discussion that the directory 
services entries 46 hold authentication information 
for each account. Clients and the KDC 48 engage 
in an authentication protocol (e.g., Kerberos) that 
allows clients to demonstrate knowledge without 

45 revealing the shared secret. If the demonstrated 
knowledge of the shared secret is sufficient, a 
response is returned to the locator (step 80). The 
response provides sufficient addressing information 
for the KDC 48 so that the client may access the 

so KDC and, thus, gain access to directory service 
entries 46. The locator 50 for the client then pro- 
vides the received response to the client (step 82). 
The address information in the response is then 
stored for later use (step 84). 

55 Another complication raised by unifying the 

directory service with the file system is the protec- 
tion of directory service entries 46 from other types 
of objects. Protection of directory service entries in 
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the preferred embodiment to the present invention 
is realized in at least two ways. First, only trusted 
machines may gain access to the directory service 
entries. As described above, relative to Figure 8, a 
requesting party must demonstrate knowledge of 5 
the shared secret to gain access to directory ser- 
vice entries. Second, the requesting party does not 
obtain direct access to the storage of directory 
service entries; rather a remote agent (called via a 
remote procedure call) acts on behalf of the re- 10 
questing party. The agent is remotely activated to 
act on the requesting party's behalf (i.e., all re- 
quests from clients are sent to this agent, which, in 
turn, accesses the real objects). As such, there is 
no way for the requesting party to damage the 75 
directory service entries or other protected informa- 
tion on the domain controller holding the directory 
service entries. Access control lists (ACLs) are 
used to control who (i.e., which clients) can access 
a directory service entry and for what purpose (e.g. 20 
read access, write access, etc.) 

The distributed system 10 may include a num- 
ber of separate machines like the workstation 36A 
depicted in Figure 5. It is helpful to provide certain 
locally relevant directory services entries on each 25 
separate machine that allow the machine to run 
independently in absence of a network or domain 
controller. Figure 10 is a flow chart illustrating the 
steps performed in the preferred embodiment of 
the present invention to maintain domain and ma- 30 
chine sets of directory service entries. A complica- 
tion that arises from having directory services en- 
tries on local machines is maintaining consistency 
between the domain set of directory service entries 
and machine sets of directory service entries. A 35 
domain set of directory service entries are provided 
for the domain that includes a machine (step 86). A 
machine set of directory service entries is also 
provided for the machine (step 88). The machine 
set of directory service entries are name transpar- 40 
ent replicants of the domain directory service en- 
tries and are particular to the machine. The struc- 
ture of the machine set of directory service entries 
reflects that of the structure of the domain set of 
directory service entries. The machine set of direc- 45 
tory service entries hold all data that is necessary 
for the machine to boot and work at a stand-alone 
or disconnected environment. One difficulty in 
maintaining two similar sets of directory service 
entries is how to maintain consistencies between 50 
the sets of directory service entries. In the pre- 
ferred embodiment of the present invention, when 
one of the sets of directory service entries changes 
(step 90), the sets of directory service entries must 
be reconciled (step 92). The reconciliation is per- 55 
formed by the replication mechanism of the object- 
oriented software system 28. A suitable replication 
mechanism is described in the copending applica- 



tion entitled, "Replication Facility," which is as- 
signed to a common assignee with the present 
invention and the contents of which are explicitly 
incorporated by reference herein. The replication 
facility makes the changes that have been made to 
one of the sets of directory service entries to the 
other set of directory service entries. 

While the present invention has been de- 
scribed with reference to a preferred embodiment 
thereof, those skilled in the art will appreciate that 
various changes in scope and detail may be made 
without departing from the present invention as 
defined in the appended claims. For instance, the 
present invention need not be implemented in an 
operating system; rather, the present invention may 
be implemented in a graphical user interface or in 
other code that is separate from the operating 
system. Moreover, as mentioned above, the 
present invention need not be implemented in an 
object-oriented environment. 

Claims 

1. In a distributed system having components 
including at least one storage device, a meth- 
od comprising the steps of: 

storing files in the storage device in logical 
structures of a particular kind; 

storing directory entries in the storage de- 
vice in logical structures of the same kind as 
the logical structures that store the files, at 
least some of said directory entries holding 
information regarding how to locate the logical 
structures in the distributed system; and 

accessing a first of the logical structures in 
the storage device that stores at least one 
directory entry to locate a second of the logical 
structures using the information stored in the 
first logical structure. 

2. The method recited in claim 1 , further compris- 
ing the step of storing an operating system in 
the storage device that includes code for ac- 
cessing the logical structures stored in the 
storage device and wherein the step of acces- 
sing the first of the logical structures in the 
storage device that stores at least one direc- 
tory entry further comprises the step of execut- 
ing the code, for accessing the logical struc- 
tures stored in the storage device, on the dis- 
tributed system to access the first of the logi- 
cal structures stored in the storage device that 
stores at least one directory entry to locate the 
second of the logical structures using the in- 
formation stored in the first logical structure. 

3. The method recited in claim 2, further compris- 
ing the step of executing the code included in 
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the operating system for accessing the logical 
structures stored in the storage device on the 
distributed system to access one of the logical 
structures that stores a file. 

5 

4. A distributed system comprising: 

a processor; 

a distributed set of storage devices; 

a distributed file system for storing files in 
logical structures of a particular kind in the set io 
of storage devices; and 

means for storing directory service entries, 
that describe the structure of the distributed 
file system, in the same kind of logical struc- 
tures as are used to store files in the set of 75 
storage devices. 

5. The distributed system recited in claim 4 
wherein the means for storing files stores files 

as objects in the storage device and the 20 
means for storing directory service entries 
stores the directory service entries in objects 
in the storage device. 

6. In a distributed system having a distributed set 25 
of storage devices, a method comprising the 
steps of: 

storing directory service entries in the stor- 
age devices; 

storing files in the storage devices; 30 

providing a querying mechanism; 

using the querying mechanism to perform 
a first query on the directory service entries to 
obtain information stored in the directory ser- 
vice entries; and 35 

using the querying mechanism to perform 
a second query on the files to obtain informa- 
tion stored in the files. 

7. The method recited in claim 6 wherein both 40 
the directory service entries and the files are 
stored as objects in the storage devices. 

8. In a distributed system running a software sys- 
tem having a programming interface that may 45 
be called to perform a function and having a 
distributed set of storage devices, a method 
comprising the steps of: 

storing directory service entries in the stor- 
age devices; 50 

storing files in the storage devices; 

calling the programming interface to per- 
form the function on the directory service en- 
tries; and 

calling the programming interface to per- 55 
form the function on the files. 



9. The method recited in claim 8 wherein both 
the directory service entries and the files are 
stored as objects in the storage devices. 

10. In a distributed system having resources that 
are logically partitioned into domains, a meth- 
od comprising the steps of: 

storing at least one set of directory service 
entries in each domain; 

generating a request from a first domain to 
access directory service entries in a second 
domain; and 

in response to the request, accessing the 
directory service entries in the second domain. 

11. The method recited in claim 10 wherein the 
step of accessing the directory service entries 
in the second domain further comprises the 
step of accessing the directory service in the 
second domain with an agent at the second 
domain that acts on behalf of the first domain. 

12. In a data processing system having resources, 
including a storage device, a method compris- 
ing the steps of: 

storing a first type of directory service 
entry in the storage device, said first type of 
directory service entry holding property values 
describing a resource; and 

storing a second type of directory service 
entry in the storage device, said second type 
of directory service entry holding information 
regarding how to locate resources within the 
distributed system. 

13. In a distributed system having hardware com- 
ponents that include at least one storage de- 
vice and processors that run processes, a 
method comprising the steps of: 

storing files in the storage device; 

storing names of the stored files in the 
storage devices to create a distributed name 
space so that the stored files are visible to the 
processes; 

logically partitioning the names of the 
stored files in the distributed name space into 
groups of files; 

for each group of files, storing in the stor- 
age device a set of associated directory ser- 
vice entries as files, the directory service en- 
tries describing locations of the stored files; 
and 

for each group of files, adding names of 
the associated directory service entries to the 
group in the distributed name space that is 
stored in the storage device. 
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14. The method recited in claim 13 wherein the 
step of storing in the storage device for each 
group of files a set of associated directory 
service entries as files further comprises the 
step of storing in the storage device, for each 
group of files, a set of associated directory 
service entries as objects. 

15. The method recited in claim 13, further com- 
prising the step of locating one of the directory 
service entries in one of the processes to 
obtain directory service information held there- 
in. 

16. The method recited in claim 13 wherein the 
step of storing in the storage devices the set of 
associated directory service entries for each 
group further comprises the step of storing 
security entries in the storage device in the 
storage as directory service entries for each 
group, said security entries providing security 
information for entries in the group. 

17. The method recited in claim 13 wherein the 
step of storing files in the storage device fur- 
ther comprises the step of storing at least one 
file in the storage device that models one of 
the hardware components. 

18. The method recited in claim 17 wherein the 
step of storing files in the storage device fur- 
ther comprises the step of storing at least one 
file in the storage device that holds instructions 
for one of the processes. 

19. In a distributed system having a plurality of 
data processing systems, wherein each data 
processing system includes a storage device 
and other resources, a method comprising the 
steps of: 

storing in at least one of the storage de- 
vices a tree-structured distributed name space 
for files in the distributed system, the distrib- 
uted name space being logically partitioned 
into domains, each domain comprising a sub- 
tree of the distributed name space; 

storing in at least one of the storage de- 
vices a domain set of directory service entries 
for each domain, the directory service entries 
holding information describing the subtree of 
the distributed name space of the domain and 
resources in the domain; 

storing in the storage device of a selected 
data processing system a local set of directory 
service entries for the selected one of the data 
processing systems, the local set of directory 
service entries including at least a portion of 
the domain set of directory service entries; and 



using the local set of directory service 
entries to obtain directory information at the 
selected one of the data processing systems; 
and 

5 locally making changes to the local set of 

directory service entries at the selected one of 
the data processing systems. 

20. The method recited in claim 19, further com- 
10 prising the step of reconciling the domain set 

of directory service entries with the local set of 
directory service entries so that the domain set 
of directory service entries includes the 
changes that have been made to the local set 
75 of directory service entries. 

21. The method recited in claim 19 wherein the 
step of storing in at least one of the storage 
devices the domain set of directory service 

20 entries for each domain further comprising the 

step of storing in at least one of the storage 
devices the domain set of directory service 
entries as objects for each domain. 

25 22. The method recited in claim 19 wherein the 
step of storing in the storage device of the 
selected data processing system the local set 
of directory service entries further comprises 
the step of storing in the storage device of the 

30 selected data processing system the local set 

of directory service entries as objects. 

23. In a distributed system having a plurality of 
resources, including a distributed file system 

35 and a distributed security system that includes 

a locator service for locating resources, a 
method comprising the steps of: 

providing directory service entries that in- 
clude information regarding structure of the 
40 distributed system, 

at system initialization, using the locator 
service of the distributed security system to 
locate the directory service entries; 

accessing the located directory service en- 
45 tries to obtain the information regarding the 

structure of the distributed system included 
therein; and 

using the information regarding the struc- 
ture of the distributed system included in the 
so directory service entries to build a distributed 

name space for the distributed system. 

24. In a distributed system having a security sys- 
tem, a file system and directory service en- 

55 tries, a method, comprising the steps of: 

providing a locator service as part of the 
security system for locating things within the 
distributed system; and 
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in response to a request to locate selected 
ones of the directory service entries, locating 
the selected directory service entries using the 
locator service. 

5 

25. The method recited in claim 24, further com- 
prising the step of accessing the selected di- 
rectory service entries once they have been 
located. 

10 

26. In a distributed system having a distributed file 
system and at least one storage device for 
storing objects, a method comprising the steps 
of: 

storing objects on the storage device; 1& 
storing directory service objects on the 
storage device for access by clients, said di- 
rectory service objects providing directory ser- 
vices for the distributed system; and 

protecting directory service objects from 20 
unauthorized access by requiring clients that 
wish to access the directory service objects to 
exhibit knowledge of a secret before being 
granted access. 

25 

27. The method recited in claim 26, further com- 
prising the step of providing additional protec- 
tion of the directory service objects by requir- 
ing access to the directory service entries on 
behalf of clients to be made by an agent. 30 

28. In a distributed system having directory ser- 
vices, a method comprising the steps of: 

providing directory service entries for use 
in the directory service of the distributed sys- 35 
tern; 

storing authentication information for users 
in the directory service entries; and 

using the authentication information stored 
in the directory service entries to authenticate 40 
whether a user is entitled to access the direc- 
tory service entries. 



storing sets of directory service entries in 
the distributed storage system, each directory 
service information holding properties; 

performing a query on the sets of directory 
service entries to extract at least one property 
from selected directory service entries; and 

storing the properties extracted from the 
selected directory service entries in a global 
catalog. 

32. The method recited in claim 31, further com- 
prising the step of replicating the global cata- 
log across the distributed system. 

33. The method recited in claim 31, further com- 
prising the step of storing a link to each direc- 
tory service entry in the selected directory 
service entries as part of the global catalog, 
said links enabling access to the selected di- 
rectory service entries. 



29. The method recited in claim 28 wherein the 

step of storing authentication information for 45 
users in the directory service entries further 
comprises the step of storing passwords for 
the users in the directory service entries. 



30. The method recited in claim 28 wherein the so 
step of storing authentication information for 
users in the directory service entries further 
comprises the step of storing credentials of the 
users in the directory service entries. 

55 

31. In a distributed system, having a distributed 
storage system, a method comprising the 
steps of: 
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